All tags

#npm

25 articles

Tech9 min

Mini Shai-Hulud npm wave hits @antv: Claude Code and VS Code persistence outlives lockfile rollback

Techupdated9 min

Blocking Shai-Hulud npm waves with pnpm 11 default minimumReleaseAge, Yarn 4.10 npmMinimalAgeGate, and npm v11.10 (with ignore-scripts gotchas)

Techupdated30 min

Mini Shai-Hulud hits TanStack & Mistral npm: CVE-2026-45321 (CVSS 9.6), TeamPCP campaign chain